Snort For Dummies

5h 44m
Bert Hayes, Charlie Scott, Paul Wolfe
John Wiley & Sons (US)
2004

Snort is the world's most widely deployed open source intrusion-detection system, with more than 500,000 downloads-a package that can perform protocol analysis, handle content searching and matching, and detect a variety of attacks and probes
Drawing on years of security experience and multiple Snort implementations, the authors guide readers through installation, configuration, and management of Snort in a busy operations environment
No experience with intrusion detection systems (IDS) required
Shows network administrators how to plan an IDS implementation, identify how Snort fits into a security management environment, deploy Snort on Linux and Windows systems, understand and create Snort detection rules, generate reports with ACID and other tools, and discover the nature and source of attacks in real time

About the Authors

Charlie Scott is an Information Security Analyst for the City of Austin, where he helps maintain the City’s network security infrastructure and helps analyze intrusion detection data. He has nearly ten years of experience in the Internet industry and has been an avid user of open source security software that entire time. Charlie is a Certified Information Systems Security Professional (CISSP) and a Cisco Certified Network Professional (CCNP).

Bert Hayes is a Security Technical Analyst for the State of Texas, where he maintains network security for a medium sized agency. In Bert’s ten years of IT industry experience, he has done everything from managing a corporate IT shop during a successful IPO to performing white hat penetration tests for corporate and government offices. He has long been a proponent of open source solutions, and is a Red Hat Certified Engineer (RHCE).

Paul Wolfe is an independent information security consultant and author, specializing in open source security.

In this Book

Snort for Dummies
Snort For Dummies
Introduction
Looking Up Snort’s Nose
Fitting In Snort
Readying Your Preflight Checklist
Makin’ Bacon: Installing Snort for Linux
Installing Snort and MySQL for Windows
Snorting through Logs and Alerts
Adding Visuals and Getting Reports
Making Your Own Rules
What, Me Worry?
Dealing with the Real Thing
Reacting in Real Time
Keeping Snort Up to Date
Filling Your Farm with Pigs
Using the Barnyard Output Tool
Ten Cool Tools for Snort
Ten Snort Information Resources

FREE ACCESS

Course CompTIA Cybersecurity Analyst+: Malicious Techniques & Procedures

(2)

Course CompTIA Cybersecurity Analyst+: Vulnerability & Penetration Testing

(1)

Book Cybersecurity All-in-One For Dummies

Get Started

Sharpen your skills. Upgrade your career. Find the right learning path for you, based on your role and skills. Take part in hands-on practice, study for a certification, and much more - all personalized for you.

*Not included: Compliance, Leadership Development Program content, and Engineering books

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

Explore a world of live learning with Global Knowledge

Choose from convenient delivery formats to get the training you and your team need - where, when and how you want it.

Browse Live Learning

IT Skills & Salary Report

ESG Impact Report

Snort For Dummies

In this Book

YOU MIGHT ALSO LIKE